GeneralInformation

Hostnames	bhf2018.com ns1.eflydns.net ns2.eflydns.net
Domains	bhf2018.com eflydns.net
Country	China
City	Foshan
Organization	FoShan RuiJiang Science and Tech Ltd.
ISP	CHINANET Guangdong province network
ASN	AS134764

WebTechnologies

JavaScript libraries

jQuery1.9.1

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2020-11023	4.3In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2020-11022	4.3In jQuery versions greater than or equal to 1.2 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. This problem is patched in jQuery 3.5.0.
CVE-2019-11358	4.3jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
CVE-2015-9251	4.3jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

OpenPorts

80 161 443 873 1701 3306 9100

1118749719 | 2024-05-07T09:17:34.762879

80 / tcp

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 09:17:34 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
Set-Cookie: GPCSSID=i8hm2r5akkbh52dig6tjs39qr3; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
Cache-control: private
Set-Cookie: referer_info=a%253A3%253A%257Bs%253A11%253A%2522shop_domain%2522%253Bs%253A15%253A%2522www.gpcskin.com%2522%253Bs%253A11%253A%2522source_page%2522%253Bs%253A0%253A%2522%2522%253Bs%253A10%253A%2522visit_page%2522%253Bs%253A23%253A%2522http%253A%252F%252Fwww.gpcskin.com%252F%2522%253B%257D; expires=Fri, 10-May-2024 09:17:34 GMT
Content-Security-Policy: connect-src *
X-Content-Type-Options: nosniff
x-xss-protection: 1; mode=block

180597457 | 2024-04-22T07:35:51.895510

161 / udp

SNMP:
  Versions:
    3
  Engine Boots: 7
  Engineid Data: 80001f8880c6a6582932b17f5a00000000
  Enterprise: 8072
  Engine Time: 1229 days, 14:38:24

-290624537 | 2024-04-22T12:21:48.062676

443 / tcp

HTTP/1.1 200 OK
Date: Mon, 22 Apr 2024 12:21:47 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
Set-Cookie: GPCSSID=24u8q8tl0eg4rt79sf1lt0t7e6; path=/; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
X-Frame-Options: ALLOW-FROM https://bytedance.com/
Cache-control: private
Server: GPC/2.0
X-Powered-By: Gpcskin

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            05:25:8e:76:a3:ce:2e:e5:b1:85:2d:6d:b0:6b:61:bd
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=DigiCert, Inc., CN=RapidSSL Global TLS RSA4096 SHA256 2022 CA1
        Validity
            Not Before: May  4 00:00:00 2023 GMT
            Not After : May  4 23:59:59 2024 GMT
        Subject: CN=*.bhf2018.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:be:ef:7e:e3:14:da:91:56:0c:64:d9:a2:f5:98:
                    b8:9f:bc:81:b5:3e:42:c4:cb:44:58:e1:ee:a2:ef:
                    bc:f7:62:16:57:db:48:20:ae:d4:d7:5c:14:60:39:
                    d4:31:ae:22:d9:28:37:08:ff:ab:85:93:eb:3a:06:
                    b6:93:df:55:14:03:db:f2:91:11:e6:84:d9:e7:91:
                    20:d3:6f:1e:d4:22:06:27:f2:ca:92:0f:ad:3f:22:
                    79:51:a4:3a:ec:f3:e7:8c:b7:95:5f:a1:3f:96:2d:
                    6c:3c:f7:63:ab:0e:89:e2:f1:32:2c:e2:88:1f:46:
                    fa:31:59:2b:f4:55:1e:29:77:04:c2:2f:b0:06:f5:
                    57:ba:8f:ca:98:e6:9d:84:84:3e:ca:3b:80:96:82:
                    f0:72:9b:2b:5f:9c:50:ac:96:94:26:cf:b9:2f:25:
                    b7:e6:60:21:0c:0f:dc:49:75:e6:9b:e2:ad:d0:09:
                    2a:7e:ea:a6:19:bb:30:3b:f3:eb:70:2f:3d:0e:61:
                    d3:47:1c:f3:37:23:a7:80:f9:50:6a:ec:e2:19:61:
                    5f:ff:97:99:15:74:f1:ab:46:51:08:91:56:d6:3c:
                    6f:6a:ce:73:c8:8a:2a:35:d3:0f:6a:96:a1:c6:d8:
                    a5:1c:40:87:57:69:03:18:fe:33:b2:49:3a:57:84:
                    56:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                F0:9C:85:FD:A2:9F:7D:8F:C9:68:BB:D5:D4:89:4D:1D:BE:D3:90:FF
            X509v3 Subject Key Identifier: 
                76:7A:8B:4A:89:25:EF:31:B1:30:F0:59:59:71:3A:F0:68:38:8F:A7
            X509v3 Subject Alternative Name: 
                DNS:*.bhf2018.com, DNS:bhf2018.com
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 CRL Distribution Points: 
                Full Name:
                  URI:http://crl3.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crl
                Full Name:
                  URI:http://crl4.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crl
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
                  CPS: http://www.digicert.com/CPS
            Authority Information Access: 
                OCSP - URI:http://ocsp.digicert.com
                CA Issuers - URI:http://cacerts.digicert.com/RapidSSLGlobalTLSRSA4096SHA2562022CA1.crt
            X509v3 Basic Constraints: 
                CA:FALSE
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : EE:CD:D0:64:D5:DB:1A:CE:C5:5C:B7:9D:B4:CD:13:A2:
                                32:87:46:7C:BC:EC:DE:C3:51:48:59:46:71:1F:B5:9B
                    Timestamp : May  4 02:16:05.919 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:FA:1A:E6:CB:E5:2C:CF:4E:FC:58:9C:
                                E0:40:60:F9:25:55:CE:BC:F7:A7:AD:6E:1C:4A:E3:3A:
                                B9:FF:2E:B5:5B:02:20:4E:60:C2:70:9F:34:BD:A6:F7:
                                72:DF:01:BD:27:D9:75:67:3B:79:E3:8D:86:F5:E6:B8:
                                FC:FE:F2:50:05:CD:07
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 73:D9:9E:89:1B:4C:96:78:A0:20:7D:47:9D:E6:B2:C6:
                                1C:D0:51:5E:71:19:2A:8C:6B:80:10:7A:C1:77:72:B5
                    Timestamp : May  4 02:16:05.959 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:44:02:20:46:94:F4:D4:15:4F:42:FC:75:9A:29:0E:
                                C8:6B:AB:D3:0B:AC:2B:E3:7B:C0:6E:BD:28:39:62:8B:
                                3B:73:EF:78:02:20:2B:F6:BF:C1:D6:E3:3F:95:43:57:
                                72:8D:0A:2F:C5:B7:46:20:A8:CF:43:F5:9E:ED:4F:16:
                                1B:B3:3A:80:34:D2
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 48:B0:E3:6B:DA:A6:47:34:0F:E5:6A:02:FA:9D:30:EB:
                                1C:52:01:CB:56:DD:2C:81:D9:BB:BF:AB:39:D8:84:73
                    Timestamp : May  4 02:16:05.894 2023 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:D6:21:3A:DE:72:7D:D7:35:EB:4F:9D:
                                81:59:6A:22:EC:6B:64:F2:BF:CC:89:5B:B1:0C:B7:84:
                                F9:22:4D:9C:04:02:20:56:DE:CE:FE:49:90:75:8F:B8:
                                ED:96:49:4C:70:B8:68:B9:C0:C8:64:F4:55:65:EA:86:
                                66:66:3A:91:EB:EC:D1
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        21:ab:83:28:1c:1b:1f:0b:4f:68:e8:d6:14:d2:0a:2c:4d:e7:
        6a:b9:72:8b:cc:ed:8a:e1:f8:84:5b:9b:11:57:5b:ca:51:fe:
        9a:e5:7b:84:11:c5:1a:f4:7f:7c:e8:cd:0e:4f:dd:af:2a:19:
        91:e9:5c:4b:e6:0f:c8:2b:c7:46:75:d0:d2:a6:65:d6:45:a8:
        6c:4a:c7:c1:5a:09:f2:f2:2e:11:fa:1d:0e:45:91:87:e0:95:
        49:63:b6:7d:cd:79:dc:50:39:25:8d:78:28:2d:ed:3c:f8:78:
        11:ee:aa:ab:45:ee:d5:46:7c:07:b8:3b:92:af:7e:72:f7:4d:
        b0:ba:03:2a:ab:78:33:b5:a3:75:0b:53:6c:2e:68:0e:57:e3:
        ef:11:e8:c5:c7:c8:19:af:c7:9e:d2:8c:f6:ab:eb:cf:4b:f0:
        fb:21:48:b9:fe:3b:34:6e:01:03:13:56:a1:d5:f5:b6:3f:1c:
        24:54:9c:93:f8:d5:66:7e:be:c5:04:61:d5:7d:a2:52:a6:bc:
        b3:74:9a:f7:fc:9b:52:2c:fb:0a:89:fb:62:a4:b6:e0:c6:0a:
        5b:66:e1:ec:2c:c4:90:57:14:bd:32:87:d0:8b:11:8e:cc:42:
        1e:12:29:3f:c7:a3:a9:17:03:2a:37:15:a8:95:13:f2:4a:6d:
        9c:7c:ec:36:76:45:fd:b9:a2:2c:ba:56:1b:0e:91:f4:51:50:
        95:99:7a:aa:34:89:7b:c3:d9:f4:b4:dd:28:cb:ca:7f:ec:c7:
        8a:a0:21:46:46:89:2a:dd:cc:bc:e2:11:81:c6:80:3e:44:7e:
        28:54:19:6f:1c:7b:46:bc:24:04:d2:c7:14:37:ba:7c:d6:36:
        4c:e7:7f:f7:72:4a:ce:38:b1:98:b1:9f:a6:65:25:da:be:f1:
        c3:e4:e9:fc:e3:d9:75:16:42:ef:eb:88:6d:ca:21:98:ad:e3:
        e3:91:e5:81:4d:d3:38:bb:6f:65:64:2a:3e:51:5a:40:31:65:
        9f:9a:ab:4c:65:61:9d:a6:57:56:e4:c1:86:b6:40:d9:a4:a5:
        f3:49:2c:ec:f6:90:06:6a:b6:4a:0f:a7:0a:97:d7:1a:66:42:
        7b:79:23:1a:61:eb:72:1c:f8:2a:56:b8:f6:a7:96:f1:9a:31:
        04:e4:90:30:16:53:85:07:da:94:3e:ef:3a:ab:41:da:d4:d4:
        cc:20:52:ac:53:af:9e:f6:a5:06:a0:a6:93:9f:1f:68:98:17:
        de:ba:31:f7:1a:5c:b3:17:e5:21:aa:41:cd:5e:c8:97:6b:ea:
        41:b2:60:bd:70:7d:fc:b6:66:5c:99:08:57:27:e2:d9:f0:00:
        f4:02:60:d2:26:28:00:7c

1369544367 | 2024-05-02T00:02:41.892000

873 / tcp

@RSYNCD: 30.0\n@RSYNCD: EXIT

-2129060956 | 2024-04-20T10:18:11.019396

1701 / udp

\xc8\x02\x00\x0c\x00\x00\x00\x00\x00\x00\x00\x01

-448841683 | 2024-04-15T07:02:16.501625

3306 / tcp

MySQL:
  Protocol Version: 10
  Version: 5.5.42-log
  Capabilities: 63487
  Server Language: 33
  Server Status: 2
  Extended Server Capabilities: 32783
  Authentication Plugin: mysql_native_password

1027296894 | 2024-05-06T20:03:27.708494

9100 / tcp

HTTP/1.1 400 Bad Request
Content-Type: text/plain; charset=utf-8
Connection: close

400 Bad Request
Prometheus Node Exporter:
  node_exporter_build_info:
    branch: HEAD
    goversion: go1.16.6
    revision: 12968948aec1e2b216a2ecefc45cf3a50671aecb
    version: 1.2.0
  node_uname_info:
    domainname: (none)
    machine: x86_64
    nodename: server2.gz.efly.gpcskin.com
    release: 2.6.32-696.10.1.el6.x86_64
    sysname: Linux
    version: #1 SMP Tue Aug 22 18:51:35 UTC 2017
  node_network_info:
    idrac:
      address: f4:8e:38:cd:b0:11
      broadcast: ff:ff:ff:ff:ff:ff
      device: idrac
      operstate: down
    ppp0:
      device: ppp0
      operstate: unknown
    lo:
      address: 00:00:00:00:00:00
      broadcast: 00:00:00:00:00:00
      device: lo
      operstate: unknown
    em4:
      address: 44:a8:42:03:49:c6
      broadcast: ff:ff:ff:ff:ff:ff
      device: em4
      duplex: unknown
      operstate: unknown
    em1:
      address: 44:a8:42:03:49:c3
      broadcast: ff:ff:ff:ff:ff:ff
      device: em1
      duplex: full
      operstate: up
    em3:
      address: 44:a8:42:03:49:c5
      broadcast: ff:ff:ff:ff:ff:ff
      device: em3
      duplex: unknown
      operstate: unknown
    em2:
      address: 44:a8:42:03:49:c4
      broadcast: ff:ff:ff:ff:ff:ff
      device: em2
      duplex: unknown
      operstate: down

120.31.134.106

Last Seen: 2024-05-07

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1118749719 | 2024-05-07T09:17:34.762879
80 / tcp

nginx

180597457 | 2024-04-22T07:35:51.895510
161 / udp

-290624537 | 2024-04-22T12:21:48.062676
443 / tcp

1369544367 | 2024-05-02T00:02:41.892000
873 / tcp

rsyncd30.0

-2129060956 | 2024-04-20T10:18:11.019396
1701 / udp

-448841683 | 2024-04-15T07:02:16.501625
3306 / tcp

MySQL5.5.42-log

1027296894 | 2024-05-06T20:03:27.708494
9100 / tcp

Prometheus Node Exporter1.2.0

Products

Pricing

Contact Us

120.31.134.106

Last Seen: 2024-05-07

Tags:

GeneralInformation

WebTechnologies

Vulnerabilities

OpenPorts

1118749719 | 2024-05-07T09:17:34.762879 80 / tcp

nginx

180597457 | 2024-04-22T07:35:51.895510 161 / udp

-290624537 | 2024-04-22T12:21:48.062676 443 / tcp

1369544367 | 2024-05-02T00:02:41.892000 873 / tcp

rsyncd30.0

-2129060956 | 2024-04-20T10:18:11.019396 1701 / udp

-448841683 | 2024-04-15T07:02:16.501625 3306 / tcp

MySQL5.5.42-log

1027296894 | 2024-05-06T20:03:27.708494 9100 / tcp

Prometheus Node Exporter1.2.0

Products

Pricing

Contact Us

1118749719 | 2024-05-07T09:17:34.762879
80 / tcp

180597457 | 2024-04-22T07:35:51.895510
161 / udp

-290624537 | 2024-04-22T12:21:48.062676
443 / tcp

1369544367 | 2024-05-02T00:02:41.892000
873 / tcp

-2129060956 | 2024-04-20T10:18:11.019396
1701 / udp

-448841683 | 2024-04-15T07:02:16.501625
3306 / tcp

1027296894 | 2024-05-06T20:03:27.708494
9100 / tcp